Garoon@5.5.0 Security Vulnerabilities and Issues — Garoon@5.5.0 CVE List

Lucene search

CybozuGaroon5.5.0

5 matches found

CVE•added 2021/08/18 6:15 a.m.•49 views

CVE-2021-20771

Cross-site scripting vulnerability in some functions of E-Mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote attacker to inject an arbitrary script via unspecified vectors.

6.1CVSS6.2AI score0.00419EPSS

CVE•added 2021/08/18 6:15 a.m.•48 views

CVE-2021-20774

Cross-site scripting vulnerability in some functions of E-mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.

5.4CVSS5.3AI score0.00209EPSS

CVE•added 2021/08/18 6:15 a.m.•47 views

CVE-2021-20773

There is a vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.5.0, which may allow a remote authenticated attacker to delete the route information Workflow without the appropriate privilege.

4.3CVSS4.5AI score0.00181EPSS

CVE•added 2021/08/18 6:15 a.m.•44 views

CVE-2021-20772

Information disclosure vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker to obtain the title of Bulletin without the viewing privilege.

4.3CVSS4.5AI score0.00177EPSS

CVE•added 2021/08/18 6:15 a.m.•36 views

CVE-2021-20775

Improper input validation vulnerability in Bulletin of Cybozu Garoon 4.10.0 to 5.5.0 allows a remote authenticated attacker to obtain the data of Comment and Space without the viewing privilege.

4.3CVSS4.6AI score0.0016EPSS